This is a loaded question :)
The legal jurisdiction, the type of testing (passive/active), corporate
governance, and the contract under which the test is being performed are
some items that come to mind to take into consideration before writing up an
NDA. Then you will need to consult with lawyers, both in that legal
territory as well as your location of operations, before you can feel
reasonably sure and secure.
This gives a place to start -
http://www.vulnerabilityassessment.co.uk/Presite%20Inspection.html
But this does not constitute legal advice - please check with those
qualified to do so!
Mani Akella
"Things should be made as simple as possible, but no simpler." - Albert
Einstein
-----Original Message-----
From: listbounce@securityfocus.com [mailto:listbounce@securityfocus.com] On
Behalf Of Zaid Amireh
Sent: Friday, September 14, 2007 10:13 AM
To: pen-test@securityfocus.com
Subject: Non Disclosure Agreement Template.
Hello,
Does anyone have/know where to find an NDA template that covers pen test
consultation work ?
virtually yours
Zaid
--
---------------------------
Netiquette -> http://www.dtcc.edu/cs/rfc1855.html
Netiquette Nazi ->
http://redwing.hutman.net/%7Emreed/warriorshtm/netiquettenazi.htm
---------------------------
------------------------------------------------------------------------
This list is sponsored by: Cenzic
Need to secure your web apps NOW?
Cenzic finds more, "real" vulnerabilities fast.
Click to try it, buy it or download a solution FREE today!
http://www.cenzic.com/downloads
------------------------------------------------------------------------
------------------------------------------------------------------------
This list is sponsored by: Cenzic
Need to secure your web apps NOW?
Cenzic finds more, "real" vulnerabilities fast.
Click to try it, buy it or download a solution FREE today!
http://www.cenzic.com/downloads
------------------------------------------------------------------------
